On 1/9/2015 4:07 PM, Jyri Hovila [Turvamies.fi] wrote:

Hello, world!

I have a long-running Dovecot & Postfix installation using PostgreSQL back-end.

Until now I've been using MD5 hashing but would like to "upgrade" to the salted SSHA512.

Is there a way to configure Dovecot so that it would automatically detect the type of the hash stored in the database, so that users who have changed their password (and thus being hashed with SHA512) and users still having an MD5 hash would both be able to authenticate at the same time?

Have a read of this:

http://wiki2.dovecot.org/HowTo/ConvertPasswordSchemes

In MySQL we use default_pass_scheme = CRYPT Assuming this is not a 10yo box, and your libs are modern, this allow for md5/shaxxx/whatever

Dont touch postgresql so never bothered to look, but I guess it accepts the same parameter.

On 1/10/15, Jyri Hovila [Turvamies.fi] jyri.hovila@turvamies.fi wrote:

Hello, world!

I have a long-running Dovecot & Postfix installation using PostgreSQL back-end.

Until now I've been using MD5 hashing but would like to "upgrade" to the salted SSHA512.

Is there a way to configure Dovecot so that it would automatically detect the type of the hash stored in the database, so that users who have changed their password (and thus being hashed with SHA512) and users still having an MD5 hash would both be able to authenticate at the same time?

Yours,

Jyri

+358-50-5632104 (24/7) +358-46-8822157 (backup) jyri.hovila@turvamies.fi